Expert analysis from Ricnology
DarkSpectre browser extension campaign compromises 8.8 million users across Chrome, Edge, and Firefox platforms, distributing malware through malicious extensions that steal authentication credentials and financial information via background processes
Trust Wallet Chrome extension compromised via Shai-Hulud supply chain malware resulting in $8.5 million cryptocurrency theft, exposing developer GitHub credentials allowing attackers to inject malicious code into wallet extension affecting digital asset security
IBM API Connect suffers from critical CVE-2024-47106 vulnerability with CVSS 9.8 severity rating, enabling remote attackers to execute arbitrary code through authentication bypass, affecting API management systems and requiring immediate patching
DarkSpectre browser extension malware campaign leverages Chrome, Edge, and Firefox extensions to distribute credential-stealing malware, compromising 8.8 million users globally through fake productivity and security tools
Trust Wallet Chrome extension compromised after attackers exploited exposed GitHub developer credentials in Shai-Hulud supply chain attack, injecting malicious code that drained $8.5 million in cryptocurrency from user wallets
IBM API Connect CVE-2025-13915 authentication bypass vulnerability rated CVSS 9.8 enables remote attackers to gain unauthorized system access through authentication mechanism exploitation, affecting enterprise API management platforms and requiring immediate patching
DarkSpectre malware campaign compromises millions of users through malicious browser extensions distributed across Chrome and Edge, stealing credentials and cryptocurrency wallet data from infected systems through silent background operations
Trust Wallet Chrome extension targeted in Shai-Hulud supply chain attack after exposed GitHub developer credentials allowed attackers to inject malicious code, resulting in $8.5 million cryptocurrency theft from user wallets
MacSync information stealer bypasses macOS Gatekeeper protections through digitally signed and notarized applications, masquerading as legitimate messaging software while exfiltrating credentials and cryptocurrency wallets from infected systems
Security researchers expose Rey's leadership role coordinating Scattered LAPSUS$ Hunters cybercrime operations, revealing infrastructure management, attack planning, and social engineering tactics across multi-million dollar breaches
U.S. Treasury removes sanctions from five individuals linked to Intellexa commercial spyware operations, reversing previous penalties imposed for mercenary surveillance software development and deployment against journalists and government officials
Nomani investment fraud expands 62% leveraging AI-generated celebrity deepfakes across Facebook and YouTube, with ESET blocking 64,000 malicious URLs distributing cryptocurrency scams through fake endorsements on social media
